向特定域内的用户提供限制式Firestore CRUD [英] Restric firestore CRUD to users within a specific domain
问题描述
我正在尝试在Firestore中创建一条规则,以限制对属于特定域的用户的所有CRUD操作的使用.我的问题是,规则上下文中似乎不包含contains子句.
I'm trying to create a rule in Firestore that restricts usage to all CRUD operations for users that belongs to a specific domain, My issue is that seems like contains clause doesn't exist in the rule context.
这是我的规则:
service cloud.firestore {
match /databases/{database}/documents {
match /{document=**} {
allow read, write: if isUserAndSignedIn();
}
}
function isUserAndSignedIn(){
return request.auth != null && request.auth.token.email.contains('domain.com')
}
}
我得到的错误是: 错误:simulator.rules行[9]的列[36].找不到函数错误:名称:[包含].
the error I'm getting is: Error: simulator.rules line [9], column [36]. Function not found error: Name: [contains].
我也尝试过使用indexOf之类的
I also tried with indexOf like
request.auth.token.email.indexOf('domain.com')!=-1 request.auth.token.email.endsWith('domain.com')
request.auth.token.email.indexOf('domain.com')!=-1 request.auth.token.email.endsWith('domain.com')
推荐答案
request.auth.token.email
将是一个字符串,并且 matches
的方法,用于使用正则表达式,您会看到文档中有一些方便的示例代码:
request.auth.token.email
is going to be a String, and according to the reference docs, String doesn't have a method called "contains". It does have a method called matches
for using regular expressions, and you can see the documentation has a handy bit of sample code:
'user@domain.com'.matches('.*@domain[.]com') == true
您应该能够适应您的情况:
Which you should be able to adapt to your case:
return request.auth != null && request.auth.token.email.matches('.*@domain[.]com')
这篇关于向特定域内的用户提供限制式Firestore CRUD的文章就介绍到这了,希望我们推荐的答案对大家有所帮助,也希望大家多多支持IT屋!